Security

Extras

Orange 'Account Notification' Phishing Scam

Outline
Email purporting to be from UK mobile and Internet service provider Orange claims that new features have been added to the recipient's profile and that he or she must click a link to update account details for the new system.

Brief Analysis
The email is not from Orange. It is a phishing scam designed to trick Orange customers into giving their account login details to Internet criminals.

Example

Subject: Customer Services ( Orange Notification )

Account Notification
Congratulations on joining one of the largest network in the world!

Dear Member,

We are contacting you to inform you that We've added new features in your account profile .
And We have updated our members accounts ,

( A few things the Orange want inform you about ) .

4G will bring seamless connectivity, faster speeds and experiences you can only get on Orange .

No matter what business you're in, we'll help make sense of your communications and IT .

There are lots of ways to top up. Whichever you choose, you'll still get all your usual goodies, like Orange Rewards .

an account update has been issued to all Orange members .
Click Here.To update you'r account , We are now offering prizes .

We hope that you will enjoy our new services .

Sincerely,

Customer Support Team

Detailed Analysis

According to this message, which claims to be from UK based mobile and Internet service provider Orange, the company has added new features to their service and updated user accounts accordingly. The email instructs users to click a link to update account details.

However, the email was not sent by Orange and has no connection to the company. Instead, it is a phishing scam designed to trick Orange customers into divulging their account login details to fraudsters.

Those who comply with the instructions in the scam email and click the link will be taken to a bogus webpage created to resemble a genuine Orange login dialogue. If users submit their login credentials on the fake site and click the login button, they will be automatically redirected to the genuine Orange website.

Meanwhile, the scammers responsible for the phishing attack can harvest the login details and use them to hijack Orange accounts belonging to their victims. Once they have gained access to the compromised accounts, the scammers can lock out the rightful owners, steal any personal and financial information stored in the accounts, and use the accounts to perpetrate further spam and scam attacks in the names of their victims.

Phishing scammers regularly target customers of phone and Internet service providers all around the world. Be wary of any unsolicited email that claims that you must click a link or open an attachment to update account details or rectify an account issue. It is always safest to login to your online accounts by entering the account address into your browser's address bar rather than by clicking a link in an email.

Last updated: October 18, 2013
First published: October 18, 2013
By Brett M. ChristensenAbout Hoax-Slayer